The Ullu app (Web, Android, iOS) parental PIN protection can be bypassed via brute force techniques (CVE-2025-45083) https://pastebin.com/mFM1a3CP

Qwizzserial malware steals banking information and intercepts 2FA SMS targeting Uzbekistan
https://www.group-ib.com/blog/rise-of-qwizzserial/

Our Smart Homes Are Still Dumb – Why We Are So Far From the Jetsons Era
https://www.gizchina.com/2025/07/02/our-smart-homes-are-still-dumb-why-we-are-so-far-from-the-jetsons-era/

New AI attack hits Chrome and Edge browsers — experts warn of ‘massive security risk’
https://www.gizchina.com/2025/07/03/new-ai-attack-hits-chrome-and-edge-browsers-experts-warn-of-massive-security-risk/

Huawei May Beat Apple with HBM Memory Technology
https://www.gizchina.com/2025/07/03/huawei-may-beat-apple-with-hbm-memory-technology/

No deleted account found from 60 scanned users from this group 🚫👻

🚨 Part 3 of My Interview with Dr. Trozzi Just Dropped — Tools to Reclaim Your Digital Autonomy

This one’s about action—how to operate freely in a world built for surveillance.

We covered encrypted messaging, virtual numbers, secure file sharing, and how to ditch Big Tech without ditching functionality.

There are solutions!

🎧 Full interview here

—
🫶 @takebackourtech
📩 WEBSITE & NEWSLETTER | 🎥 VIDEOS| XMPP | SUBSTACK

⌚️Uncle Sam Wants You To Wear a Smartwatch

At a recent HHS budget hearing, RFK Jr. said he wants every American wearing a health-tracking device in 4 years.

HHS is set to launch its biggest campaign yet to push smartwatches and continuous glucose monitors—devices that send real-time data to your phone.

Casey Means, RFK’s Surgeon General pick and co-founder of a glucose monitoring company, backs the rollout.

Apple already shares health study data with HHS. Google, Apple, and Meta are building EEG tech that reads your brain activity.
Read more: How Big Tech Plans To Read Your Mind

With Trump’s 2025 executive order to break down data silos, your health info could soon merge with your government records.

🪧 Read the full article on Substack
📝 Follow our blog

#TBOT related news:

🧠 Get a deep dive into SIM swapping in our latest Above webinar
📲 5 Must-Change Privacy Settings on iPhone & Android
🛡️ Get your privacy gear here

🔕Android 16's Live Updates won't work with your favorite music player, and that's a bummer

Only some notifications can be shown as Live Updates in Android 16, and that doesn't include media player notifications.

Here's why👇

🔗 https://androidauthority.com/android-16-live-updates-music-player-3573487/

(Hey developers! If you're looking to add support for Android 16's Live Updates feature in your app, Google has recently published the full documentation on how to do so! They haven't publicized it yet, but I've got all the details in this article.)

🚨 Cisco just patched a 10.0 CVSS flaw that let attackers log in as root—no config needed.

The backdoor? A static dev credential left in production.

It affected all Unified CM v15.0.1 builds.

Full details → https://thehackernews.com/2025/07/critical-cisco-vulnerability-in-unified.html

🚨 Chinese hackers hit France’s critical sectors using 3 Ivanti zero-days — and then patched them to keep others out.

Rootkits, web shells, and resale of access hint at a black-market cyber operation selling to state-linked buyers.

Find details here → https://thehackernews.com/2025/07/chinese-hackers-exploit-ivanti-csa-zero.html

🚨 40+ fake crypto wallet extensions on Firefox were stealing users’ keys and IPs — in plain sight.

They cloned real wallets like MetaMask & Coinbase, faked 5-star reviews, and exfiltrated secrets to a remote server.

Full story → https://thehackernews.com/2025/07/over-40-malicious-firefox-extensions.html

🚨 DEVMAN is a new threat actor already claiming 40 victims across Asia, EU, LATAM, and Africa.

It's affiliated with Qilin, RansomHub, and DragonForce RaaS groups, targeting business and government.

Read technical analysis of the ransomware it uses on #ANYRUN's blog: https://thn.news/devman-ransomware-analysis-tg

🚨 Most AI SOC tools can’t triage new threats.

They rely on pre-trained models that only handle known attack types—leaving your team exposed.

Radiant’s adaptive AI learns in real time, triages any alert, and cuts response time from days to minutes.

Details here → https://thehackernews.com/2025/07/the-hidden-weaknesses-in-ai-soc-tools.html

🚨 Android adware is spiraling out of control:

🔸 352 hidden apps faked icons, flooded 1.2B ad bids/day
🔸 “Evil twin” apps clone legit ones to hijack ad revenue
🔸 NFC malware lets attackers withdraw cash remotely
🔸 SMS stealers hit 100K phones, draining bank accounts

What you need to know → https://thehackernews.com/2025/07/mobile-security-alert-352-iconads-fraud.html

https://github.com/b-aaz/xlibre-ports

Porting X11Libre to FreeBSD

An effort for porting X11libre to FreeBSD. (https://t.me/x11dev for dev discussions)

After cloning, you can use the OVERLAY option in the /etc/make.conf to overlay this folder to your main tree. Use a jail for testing, so that your packages won't get messed up.

Deniable Encryption: They Can't Prosecute What They Can't Prove

https://youtu.be/Ofm0xSD6nq0

EU Turns Voluntary “Disinformation” Code Into Mandatory Rule Under New Censorship Law, Risking US Trade Tensions
https://ift.tt/0GJ1eYf - FOLLOW: @reclaimthenet

DOJ Joins Lawsuit Against Media-Tech Collusion Over Free Speech
https://ift.tt/Pvxtry1 - FOLLOW: @reclaimthenet

Google Fined $314.6M for Data Collection by San Jose Jury
https://ift.tt/QL4IVT9 - FOLLOW: @reclaimthenet